💾 Archived View for bbs.geminispace.org › u › alexlehm › 1134 captured on 2024-02-05 at 15:04:43. Gemini links have been rewritten to link to archived content
⬅️ Previous capture (2023-12-28)
-=-=-=-=-=-=-
Re: "Expiration of self-signed certificates Does it make sense..."
self-signed certs are often created for 10 years, some are created for 1 year, I am not sure which date format is actually supported, this may have an issue similar to the 2037 problem
2023-05-27 · 8 months ago
🚀 skyjake [mod...] · 2023-05-27 at 13:23:
@mbays
— /s/Lagrange-Issues/issues/22
Expiration of self-signed certificates Does it make sense to use Not After on self-signed gemini server and client certificates, so that they expire after some time? I long ago came to the conclusion that it doesn't make sense, but it still seems to be standard practice, so I'm worried that I may have missed something. Have I? Certainly you shouldn't expect a self-signed certificate to be usable forever -- the private key might be compromised one day, and anyway the underlying encryption will